Se rendre au contenu

Security & Compliance

Lynx Compliance - Privacy (Law 25, PIPEDA, DSAR)

Privacy Impact Assessments, Data Subject Access Requests with 30-day deadline, consent register, privacy breach register. Built for Quebec Law 25 and Canadian PIPEDA.

Talk to sales See pricing

lynx_compliance_privacy · v19.0.1.4.0 · Premium

What this solves

Lynx Compliance - Privacy

Operationalize Quebec Law 25 and Canadian PIPEDA - PIAs, DSARs, consent, and breach register - on the same record store as your security and governance evidence.

Privacy isn't a Word document. Law 25 wants a named privacy officer, a PIA workflow with annual review, a 30-day DSAR clock, granular consent, and a breach register that ties back to your incident response. This module ships all four registers, wires them into the compliance evidence catalog, and binds them to the tamper-evident audit log so consent withdrawals can be proven later.

Key Features

  • Privacy Impact Assessments - lynx.pia with draft/in-review/approved workflow, annual review cadence, and template-driven authoring.

  • Data Subject Access Requests - lynx.dsar.request covers six request types (access, rectification, erasure, portability, objection, withdrawal); 30-day deadline raised as mail activity.

  • Consent register - lynx.consent.record tracks partner x purpose with grant and withdrawal timestamps and a proof reference.

  • Privacy breach register - lynx.privacy.breach covers cyber and non-cyber breaches (lost device, misdirected mail) and inherits the Law 25 72-hour clock when linked to an incident.

  • Privacy officer field - res.company.privacy_officer_id records the legal Responsable de la protection des renseignements personnels.

  • Audit-log integration - PIAs and consent records inherit the audit mixin so every change lands in the hash chain.

Integrates With

  • lynx_compliance - all four privacy models become evidence targets on control assessments.

  • lynx_compliance_incident - privacy breaches link to security tickets that flagged affects_personal_info.

  • lynx_compliance_audit_log - consent grants and withdrawals are tamper-evident.

Depends on

mail lynx_base lynx_compliance base contacts lynx_helpdesk website spreadsheet_dashboard lynx_license_enforcer

Try Lynx Compliance - Privacy (Law 25, PIPEDA, DSAR) on your team.

Free trial, no credit card. Talk to sales when you're ready.

Start free trial Browse all modules